Talent Network
Back to results

Head of IT Risk

Join us as Head of IT Risk

  • This key role will see you creating a strong operational risk management culture and awareness across the bank
  • We'll look to you assist with developing and enhancing our operational risk framework for change and transformation risk oversight
  • You'll have a real opportunity to add value and deliver lasting results in this role, while building meaningful relationships with a wide variety of stakeholders

What you'll do

As Head of IT Risk, you’ll be making sure that change and transformation risk processes are adequately designed, implemented and understood across the bank. You'll be leading the second line oversight of material strategic, mandatory and business change programmes, while working with the first line of defence to make sure that mitigating strategies are implemented to minimise risk impacts.

Alongside this, you’ll be providing expert support and guidance on risk and control frameworks, making sure these meet the strategic needs of the bank including business communication, training and awareness.

You'll also be:

  • Providing strategic direction to the business on the adequacy of their operational risk mitigation strategies, framework and plans
  • Building insights by using internal and external intelligence and using this to actively consider the business risk profile to validate how we identify and assess operational risk
  • Undertaking regular business reviews of material risks and of adherence across all operational risk standards, using the outputs to inform debate and action with senior management
  • Detecting inadequate or ineffective controls to mitigate operational risk to the desired level and challenging the appropriateness of risk appetite
  • Leading the delivery of operational risk wide projects on behalf of senior management
  • Overseeing first line of defence risk managers and assessing the whole horizon of risks to support whole function, colleagues and customers

The skills you'll need

We're looking for someone with excellent operational risk experience, specifically in IT and cyber risk. Along with this, you’ll have a detailed knowledge of the regulatory environment pertaining to large, complex financial service organisations and a broad understanding of risk management disciplines in financial services.

You'll need a good solid understanding of cyber security and be specialist in this area, as well as the ability to support teams and to mentor and support colleagues with complex risks. You'll need regulatory experience and the ability to face off to external regulators and ExCo, along with the ability to communicate complex information to all stakeholders. You'll also need to hold an ICA qualification.

In addition, you'll need:

  • An understanding of market conditions and how they could impact operational risks and practices
  • The ability to probe and investigate in the right area for the answers and to feed information back to the business of possible cyber risks
  • A proven track record of managing and delivering projects or multiple activities
  • Excellent influencing and creative skills to resolve conflict and complex problems and to identify alternative solutions
  • Strong communication and organisational skills
  • Experience of managing key stakeholder relationships